summaryrefslogtreecommitdiff
path: root/spec
Commit message (Expand)AuthorAgeFilesLines
* Limit access request email to 10 most recently active owners/maintainersManoj MJ2019-08-307-34/+217
* Fix for #56295, https://gitlab.com/gitlab-org/gitlab-ce/issues/56295.Jesse Hall2019-08-302-0/+63
* Merge branch 'fix-nil-deployable-exception-on-job-controller-show' into 'master'Grzegorz Bizon2019-08-302-0/+17
|\
| * Fix deployable nil exception on job controllerfix-nil-deployable-exception-on-job-controller-showShinya Maeda2019-08-302-0/+17
* | Fix for histogram corruption in SidekiqAndrew Newdigate2019-08-301-1/+1
* | Install cert-manager v0.9.1James Fargher2019-08-301-7/+20
* | Merge branch 'ab-routable-two-step-search' into 'master'Jan Provaznik2019-08-301-1/+19
|\ \
| * | Perform two-step Routable lookup by pathAndreas Brandl2019-08-301-1/+19
* | | Rename epic column state to state_idFelipe Artur2019-08-301-1/+1
* | | Improve search result labelsMarkus Koller2019-08-3018-181/+212
* | | Merge branch 'nfriend-add-anchor-tag-to-release-block' into 'master'Kushal Pandya2019-08-301-0/+4
|\ \ \
| * | | Add id to release blocknfriend-add-anchor-tag-to-release-blockNathan Friend2019-08-281-0/+4
* | | | Merge branch 'ce-13479-rename-atmtwps-to-mtwps' into 'master'Paul Slaughter2019-08-301-2/+2
|\ \ \ \
| * | | | Rename ATMTWPS to MTWPS (CE)ce-13479-rename-atmtwps-to-mtwpsNathan Friend2019-08-221-2/+2
* | | | | Resolve "Use "moved" instead of "closed" in issue references"Juliette de Rancourt2019-08-301-0/+8
| |_|/ / |/| | |
* | | | URL-encode file links in find fileJan Beckmann2019-08-301-0/+77
* | | | Allow be_url to specify the typeAlex Kalderimis2019-08-302-6/+37
| |_|/ |/| |
* | | Merge branch 'master' of dev.gitlab.org:gitlab/gitlabhqRobert Speicher2019-08-2946-218/+1917
|\ \ \
| * \ \ Merge branch 'security-enable-image-proxy' into 'master'GitLab Release Tools Bot2019-08-2911-1/+324
| |\ \ \
| | * | | Fix failing spec due to changes UpdateServiceBrett Walker2019-08-231-1/+1
| | * | | Add support for using a Camo proxy serverBrett Walker2019-08-2310-0/+323
| * | | | Merge branch 'security-2853-prevent-comments-on-private-mrs' into 'master'GitLab Release Tools Bot2019-08-293-71/+357
| |\ \ \ \
| | * | | | Prevent unauthorised comments on merge requestsAlex Kalderimis2019-08-073-71/+357
| * | | | | Merge branch 'security-epic-notes-api-reveals-historical-info-ce-master' into...GitLab Release Tools Bot2019-08-293-16/+24
| |\ \ \ \ \
| | * | | | | Use `stub_full_request` to fix spec failureHeinrich Lee Yu2019-08-283-16/+24
| * | | | | | Merge branch 'security-personal-snippets' into 'master'GitLab Release Tools Bot2019-08-293-3/+44
| |\ \ \ \ \ \
| | * | | | | | Add direct upload support for personal snippetsJan Provaznik2019-08-233-3/+44
| * | | | | | | Merge branch 'security-fix-html-injection-for-label-description-ce-master' in...GitLab Release Tools Bot2019-08-292-0/+17
| |\ \ \ \ \ \ \
| | * | | | | | | Fix HTML injection for label descriptionPatrick Derichs2019-08-052-0/+17
| * | | | | | | | Merge branch 'security-fix_jira_ssrf_vulnerability' into 'master'GitLab Release Tools Bot2019-08-291-0/+5
| |\ \ \ \ \ \ \ \
| | * | | | | | | | Fix DNS rebind vulnerability for JIRA integrationFelipe Artur2019-08-081-0/+5
| | | |_|_|/ / / / | | |/| | | | | |
| * | | | | | | | Merge branch 'security-61974-limit-issue-comment-size' into 'master'GitLab Release Tools Bot2019-08-294-4/+47
| |\ \ \ \ \ \ \ \
| | * | | | | | | | Limit the size of issuable description and commentsAlexandru Croitor2019-08-224-4/+47
| * | | | | | | | | Merge branch 'security-59549-add-capcha-for-failed-logins' into 'master'GitLab Release Tools Bot2019-08-294-18/+171
| |\ \ \ \ \ \ \ \ \
| | * | | | | | | | | Add captcha if there are multiple failed login attemptsMaƂgorzata Ksionek2019-07-314-18/+171
| * | | | | | | | | | Merge branch 'security-mr-head-pipeline-leak' into 'master'GitLab Release Tools Bot2019-08-291-4/+26
| |\ \ \ \ \ \ \ \ \ \
| | * | | | | | | | | | Permission fix for MergeRequestsController#pipeline_statusdrew cimino2019-08-121-4/+26
| * | | | | | | | | | | Merge branch 'security-katex-dos-master' into 'master'GitLab Release Tools Bot2019-08-291-2/+4
| |\ \ \ \ \ \ \ \ \ \ \
| | * | | | | | | | | | | Enforce max chars and max render time in markdown mathMartin Hanzel2019-08-061-2/+4
| | | |_|_|/ / / / / / / | | |/| | | | | | | | |
| * | | | | | | | | | | Merge branch 'security-project-import-bypass' into 'master'GitLab Release Tools Bot2019-08-292-15/+135
| |\ \ \ \ \ \ \ \ \ \ \
| | * | | | | | | | | | | Fix project import restricted visibility bypassGeorge Koltsov2019-08-152-15/+135
| | |/ / / / / / / / / /
| * | | | | | | | | | | Merge branch 'security-hide_merge_request_ids_on_emails' into 'master'GitLab Release Tools Bot2019-08-292-18/+78
| |\ \ \ \ \ \ \ \ \ \ \
| | * | | | | | | | | | | Prevent disclosure of merge request id via emailFelipe Artur2019-08-192-18/+78
| | |/ / / / / / / / / /
| * | | | | | | | | | | Merge branch 'security-group-runners-permissions' into 'master'GitLab Release Tools Bot2019-08-291-38/+167
| |\ \ \ \ \ \ \ \ \ \ \
| | * | | | | | | | | | | admin_group authorization for Groups::RunnersControllerdrew cimino2019-08-221-38/+167
| * | | | | | | | | | | | Merge branch 'security-ci-metrics-permissions' into 'master'GitLab Release Tools Bot2019-08-291-8/+52
| |\ \ \ \ \ \ \ \ \ \ \ \
| | * | | | | | | | | | | | Restrict MergeRequests#test_reports to authenticated users with read-access o...drew cimino2019-08-221-8/+52
| * | | | | | | | | | | | | Merge branch 'security-sarcila-fix-weak-session-management' into 'master'GitLab Release Tools Bot2019-08-292-0/+58
| |\ \ \ \ \ \ \ \ \ \ \ \ \
| | * | | | | | | | | | | | | Add User#will_save_change_to_login? to clear reset_password_tokensSebastian Arcila Valenzuela2019-08-212-0/+58
| * | | | | | | | | | | | | | Merge branch 'security-fix-markdown-xss' into 'master'GitLab Release Tools Bot2019-08-293-0/+36
| |\ \ \ \ \ \ \ \ \ \ \ \ \ \
View Lorry Controller Status